|
|
|
|
|
|
by em-bee
1187 days ago
|
|
|
because I definitely double check the provenance of the 30 dependencies that blow past my terminal when I apt install something why would you? that's the package maintainers job.
each of these dependency also has a maintainer, so by definition all dependencies have a provenance that is as good as the package you are installing. this is not npm where anyone can upload something and you have to check the provenance of each yourself |
|
|